On Tue, Jan 28, 2014 at 8:56 AM, Sorin Srbu Sorin.Srbu@orgfarm.uu.se wrote:
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of Logan McNaughton Sent: den 28 januari 2014 14:33 To: CentOS mailing list Subject: Re: [CentOS] NIS or not?
Where I work we use NIS + Kerberos (Active Directory). We have about 150 machines at our site. It works quite well, as someone said, the big draw back to NIS is that it sends passwords insecurely, but if you use Kerberos for authentication it's really quite easy to manage.
We do have Active Directory as well, but only for the Windows clients.
But I'd rather keep them separated.
Kerberos on linux. Is that a pain or a bigger pain? Whenever I've worked with Kerberos on Windows I've come out all sweaty afterwards... 8-S
Then stop playing with yourself already! ;)
Kerberos on linux works quite well; keep everyone's clock within 5min of the auth server and you will be ok. I have not done sssd yet though. I did have timeout with nfs automount issues due to expired tickets, but that setup is old.
-- //Sorin
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos